Enhancement #3071

missing vpn certs in configuration backup

Added by Davide Marini over 6 years ago. Updated over 6 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-vpn
Target version:v6.6
Resolution: NEEDINFO:No

Description

the configuration backup include these dirs:

/var/lib/nethserver/db
/var/lib/nethserver/secrets
/etc/e-smith/templates-custom
/etc/e-smith/templates-user-custom
/etc/pki/tls/certs/$hostname.crt
/etc/pki/tls/private/$hostname.key

it's important to add also the following dir containing user's certificate for vpn purposes:

/var/lib/nethserver/certs/

Associated revisions

Revision 23c4aa1e
Added by Giacomo Sanchietti over 6 years ago

backup-config: add certificate directory. Refs #3071

History

#1 Updated by Giacomo Sanchietti over 6 years ago

  • Category set to nethserver-vpn
  • Status changed from NEW to TRIAGED
  • % Done changed from 0 to 20

#2 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from TRIAGED to ON_DEV
  • Assignee set to Giacomo Sanchietti
  • % Done changed from 20 to 30

#3 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from ON_DEV to MODIFIED
  • % Done changed from 30 to 60

#4 Updated by Giacomo Sanchietti over 6 years ago

  • Tracker changed from Bug to Enhancement
  • Status changed from MODIFIED to ON_QA
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 60 to 70
Package in nethserver-testing:
  • nethserver-vpn-1.1.4-1.3.g86a4f6a.ns6.noarch.rpm
Test case
  • Install nethserver-backup-config
  • Install nethserver-vpn
  • Configure at least one vpn account
  • Execute theconfiguration backup:
    backup-config
    
  • Check the backup contains vpn certificates:
    tar tvf  /var/lib/nethserver/backup/backup-config.tar.xz | grep var/lib/nethserver/certs/
    

#5 Updated by Nicola Rauso over 6 years ago

  • Assignee set to Nicola Rauso

#6 Updated by Nicola Rauso over 6 years ago

  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Nicola Rauso)
  • % Done changed from 70 to 90

Tested: OK

the db "accounts" content:

# db accounts show test
test=vpn
    VPNRemoteNetmask=
    VPNRemoteNetwork=

"backup-config" file content:

# tar vtf /var/lib/nethserver/backup/backup-config.tar.xz | grep var/lib/nethserver/certs/
-rw-r--r-- root/root       245 2015-03-10 18:05 var/lib/nethserver/certs/dh1024.pem
-rw-r--r-- root/root       128 2015-03-10 18:12 var/lib/nethserver/certs/certindex
-rw-r--r-- root/root        21 2015-03-10 18:12 var/lib/nethserver/certs/certindex.attr
-rw-r--r-- root/root         3 2015-03-10 18:05 var/lib/nethserver/certs/crlnumber.old
-rw-r--r-- root/root      3814 2015-03-10 18:12 var/lib/nethserver/certs/test.p12
-rw-r----- root/adm       1704 2015-03-10 18:12 var/lib/nethserver/certs/test.key
-rw-r--r-- root/root      1529 2015-03-10 18:12 var/lib/nethserver/certs/test.crt
-rw-r--r-- root/root         0 2015-03-10 18:05 var/lib/nethserver/certs/certindex.attr.old
-rw-r--r-- root/root       731 2015-03-10 18:05 var/lib/nethserver/certs/crl.pem
-rw-r--r-- root/root         3 2015-03-10 18:05 var/lib/nethserver/certs/serial.old
-rw-r--r-- root/root         3 2015-03-10 18:12 var/lib/nethserver/certs/serial
-rw-r--r-- root/root         0 2015-03-10 18:05 var/lib/nethserver/certs/certindex.old
-rw-r--r-- root/root      1559 2015-03-05 16:16 var/lib/nethserver/certs/ca.cnf
-rw-r--r-- root/root         3 2015-03-10 18:05 var/lib/nethserver/certs/crlnumber
-rw-r--r-- root/root      1529 2015-03-10 18:12 var/lib/nethserver/certs/01.pem
-rw-r--r-- root/root      1066 2015-03-10 18:12 var/lib/nethserver/certs/test.csr

#7 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100
Released in nethserver-base:
  • nethserver-vpn-1.1.5-1.ns6.noarch.rpm

Also available in: Atom PDF